Management Controls

[woodbe]

• Overall score calculation frequency
• individual input sampling frequency
• overall score for authorized (i.e. you don't need to add more input to access the device)
• what are the required inputs
• variable threshold for authorization
  • for example inside the office on the enterprise Wi-Fi may have a lower threshold than walking on the street somewhere else
  • could also be handled via high weighting for some parameters
• variable weightings for parameters
  • adjust the weight for certain inputs (i.e. Wi-Fi)
  • adjust weight for specific inputs (i.e. this specific Wi-Fi network)
• admin override of vendor trust setting (optional)
  • allows customer to change the trust that the vendor has assigned by default
• combination inputs, like location/Wi-Fi/time and how they should work
  • what happens if 2 of 3 match? depends on which one?
• input-specific parameters (for example)
  • geo-fences
  • office hours
  • Wi-Fi networks

A requirement that specifies a minimum level of trust/parameters that must be configured for the system

A way to show the "strength score" on the outcome of the selected configuration (like the password score bars). So the admin can know they aren't creating a poor configuration

[woodbe]

Vendor needs to provide minimum input threshold (specifically the number/types of input) for score. Customer can adjust above that (which could balance the scoring differently due to the overall number of used inputs), but the minimum requirement is specified by the vendor.

Score scaling will be important here (and how scores are added together)